ZyXEL Vantage CNM User Guide - Page 447
Device Operation > Configuration Management > ZLD Firewall Rule, Group Configuration > Add/
View all ZyXEL Vantage CNM manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 447 highlights
Chapter 17 Configuration Management Table 198 Device Operation > Configuration Management > ZLD Firewall Rule Group Configuration > Add/Edit (continued) TYPE DESCRIPTION Source Address Select a source address or address group for whom this rule applies. If you want to use an address object hat has been configured on the ZyWALL, select Use Address object in device and type the object's name (case insensitive). If you want to use an address BB configured on Vantage CNM, select Use Address BB in CNM and select the BB. Select Create Object to configure a new one. Destination Address Otherwise, Select Use Address object in device and type any if the policy is effective for every source. Select a destination address or address group for whom this rule applies. If you want to use an address object hat has been configured on the ZyWALL, select Use Address object in device to and type the object's name (case insensitive). If you want to use an address BB configured on Vantage CNM, select Use Address BB in CNM and select the BB. Select Create Object to configure a new one. Service Otherwise, Select Use Address object in device and type any if the rule is effective for every destination. Select a service or service group from the drop-down list box. If you want to use a service object hat has been configured on the ZyWALL, select Use Service object in device to and type the object's name (case insensitive). If you want to use a service BB configured on Vantage CNM, select Use Service BB in CNM to and select the service BB. Select Create Object to add a new service. See Chapter 39 on page 637 for more information. Access Otherwise, Select Use Service object in device and type any if the rule is effective for every service. Use the drop-down list box to select what the firewall is to do with packets that match this rule. Select deny to silently discard the packets without sending a TCP reset packet or an ICMP destination-unreachable message to the sender. Select reject to deny the packets and send a TCP reset packet to the sender. Any UDP packets are dropped without sending a response packet. Log Selected Devices Page Size Select allow to permit the passage of the packets. Select whether to have the Vantage CNM generate a log (log), log and alert (log alert) or not (no) when the rule is matched. See Chapter 48 on page 763 for more on logs. This section displays the device(s) to which this rule applies. Select how many records you want to see in each page. Vantage CNM User's Guide 447